Email this Article Email   

CHIPS Articles: NIST Publishes SP 800-57 Part 1, Revision 5, Recommendation for Crypto-Key Management

NIST Publishes SP 800-57 Part 1, Revision 5, Recommendation for Crypto-Key Management
By CHIPS Magazine - May 6, 2020
The National Institute of Standards and Technology has updated its key management guidance in Special Publication (SP) 800-57 Part 1 Revision 5, Recommendation for Key Management: Part 1 – General.

SP 800-57 Part 1 Rev 5 provides cryptographic key-management guidance. The guidance consists of three parts. Part 1 provides general guidance and best practices for the management of cryptographic keying material, including definitions of the security services that may be provided when using cryptography and the algorithms and key types that may be employed. Part 1 also provides specifications of the protection that each type of key and other cryptographic information requires and methods for providing this protection, discussions about the functions involved in key management, and discussions about a variety of key-management issues to be addressed when using cryptography, NIST officials explained.

Part 2 provides guidance on policy and security planning requirements for U.S. Government agencies. Part 3 provides guidance when using the cryptographic features of current systems.

The Recommendation provides general guidance and best practices for the management of cryptographic keying material. Among other changes, this revision:

  • emphasizes the protection needed for the metadata associated with keys;
  • includes discussions on access control, identity authentication, and inventory management for keys and certificates; and
  • provides guidance consistent with Federal Information Processing Standards (FIPS) Publication 201, Personal Identity Verification (PIV) of Federal Employees and Contractors, and SP 800-63-3, Digital Identity Guidelines.

Appendix C contains a complete list of changes.

Publication Detail:
https://csrc.nist.gov/publications/detail/sp/800-57-part-1/rev-5/final

Special Publication (SP) 800-57 Part 1 Revision 5 supersedes: SP 800-57 Part 1 Rev. 4 (01/28/2016)

Related CHIPS Articles
Related DON CIO News
Related DON CIO Policy

CHIPS is an official U.S. Navy website sponsored by the Department of the Navy (DON) Chief Information Officer, the Department of Defense Enterprise Software Initiative (ESI) and the DON's ESI Software Product Manager Team at Space and Naval Warfare Systems Center Pacific.

Online ISSN 2154-1779; Print ISSN 1047-9988
Hyperlink Disclaimer